Turtle WoW leak, with authentication database pruned for privacy reasons.
Go to file
dependabot[bot] 8faece5c13
Bump webpack and @angular-devkit/build-angular
Bumps [webpack](https://github.com/webpack/webpack) to 5.94.0 and updates ancestor dependency [@angular-devkit/build-angular](https://github.com/angular/angular-cli). These dependencies need to be updated together.


Updates `webpack` from 5.36.2 to 5.94.0
- [Release notes](https://github.com/webpack/webpack/releases)
- [Commits](https://github.com/webpack/webpack/compare/v5.36.2...v5.94.0)

Updates `@angular-devkit/build-angular` from 12.0.0 to 18.2.2
- [Release notes](https://github.com/angular/angular-cli/releases)
- [Changelog](https://github.com/angular/angular-cli/blob/main/CHANGELOG.md)
- [Commits](https://github.com/angular/angular-cli/compare/v12.0.0...18.2.2)

---
updated-dependencies:
- dependency-name: webpack
  dependency-type: indirect
- dependency-name: "@angular-devkit/build-angular"
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-09-03 15:41:26 +00:00
Dumps/Source Code Bump webpack and @angular-devkit/build-angular 2024-09-03 15:41:26 +00:00
Screenshots Init 2024-08-06 18:06:40 +02:00
original_readme.txt Init 2024-08-06 18:06:40 +02:00
README.md Init 2024-08-06 18:06:40 +02:00

Turtle-WoW Emulation Server Source Code

This repository was initiated after the Turtle-WoW server was presumably compromised through a reverse payload, exploit in their CMS or potentially by a malicious team member.

Important Notice

Caution: Users should be aware of the possibility of backdoors, exploits, or other malicious elements within the source files due to the history of the owner of Turtle-WoW, known as Shenna/Torta. Exercise caution when using or reviewing the code.

Disclaimer

  • No Liability: I am not liable for any issues, damages, or legal consequences that may arise from the use of this source code.
  • No Affiliation: I have no affiliation with Turtle-WoW or any related parties. This repository is for informational purposes only.
  • Rights: The rights to almost all material included in this repository belong to Blizzard Entertainment or Activision, as applicable.

Use this source code at your own risk. Ensure you thoroughly review and understand the code before making any use of it.

Authentication Databases

I have not included the authentication databases in this repository for privacy and moral reasons. It is advised to never use the same password across different platforms, especially not on shady emulation projects.

Passwords used up to Cataclysm can be easily cracked due to limitations set by the client. So its not a matter of if, but when the passwords will be decrypted.

Security Advisory

Whenever you connect to a Vanilla, TBC, WotLK (and possibly higher expansion) server, you are susceptible to a payload that can run malicious code on your system. Fortunately, this leak has prompted the community to create a fix to counter such payload injections for the WotLK (3.3.5a) client of the game, by disabling Warden (anti-cheat system). You can view this fix here: RCEPatcher. Be aware that this fix prevents you playing on Warden enabled servers.

On top of this, if you logged in and received a patch in the last couple of days, you might be infected with a virus. The Vanilla and Burning Crusade clients are especially insecure, because the RSA keys got cracked, the Turtle-WoW uses this patching mechanism in the client. There is information going around in the community that the hacker(s) tried to exploit this, but it's unclear.

For more information, you can refer to the original_readme.txt included in this leak.